Lucene search

QualcommCVE-2020-11186

HistoryMar 17, 2021 - 6:15 a.m.

CVE-2020-11186

2021-03-1706:15:13

CWE-835

qualcomm

web.nvd.nist.gov

cve-2020-11186

modem

snapdragon auto

snapdragon compute

snapdragon mobile

input validation

security vulnerability

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

17.2%

JSON

Modem will enter into busy mode in an infinite loop while parsing histogram dimension due to improper validation of input received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

Affected configurations

Nvd

Node

qualcommcsrb31024_firmwareMatch-

AND

qualcommcsrb31024Match-

Node

qualcommpm3003a_firmwareMatch-

AND

qualcommpm3003aMatch-

Node

qualcommpm7150a_firmwareMatch-

AND

qualcommpm7150aMatch-

Node

qualcommpm7150l_firmwareMatch-

AND

qualcommpm7150lMatch-

Node

qualcommpm7250_firmwareMatch-

AND

qualcommpm7250Match-

Node

qualcommpm7250b_firmwareMatch-

AND

qualcommpm7250bMatch-

Node

qualcommpm8008_firmwareMatch-

AND

qualcommpm8008Match-

Node

qualcommpm8009_firmwareMatch-

AND

qualcommpm8009Match-

Node

qualcommpm8150a_firmwareMatch-

AND

qualcommpm8150aMatch-

Node

qualcommpm8150b_firmwareMatch-

AND

qualcommpm8150bMatch-

Node

qualcommpm8150c_firmwareMatch-

AND

qualcommpm8150cMatch-

Node

qualcommpm8150l_firmwareMatch-

AND

qualcommpm8150lMatch-

Node

qualcommpm8250_firmwareMatch-

AND

qualcommpm8250Match-

Node

qualcommpmk8002_firmwareMatch-

AND

qualcommpmk8002Match-

Node

qualcommpmr525_firmwareMatch-

AND

qualcommpmr525Match-

Node

qualcommpmx24_firmwareMatch-

AND

qualcommpmx24Match-

Node

qualcommpmx55_firmwareMatch-

AND

qualcommpmx55Match-

Node

qualcommqat3516_firmwareMatch-

AND

qualcommqat3516Match-

Node

qualcommqat3518_firmwareMatch-

AND

qualcommqat3518Match-

Node

qualcommqat3519_firmwareMatch-

AND

qualcommqat3519Match-

Node

qualcommqat3555_firmwareMatch-

AND

qualcommqat3555Match-

Node

qualcommqat5515_firmwareMatch-

AND

qualcommqat5515Match-

Node

qualcommqat5522_firmwareMatch-

AND

qualcommqat5522Match-

Node

qualcommqat5533Match-

AND

qualcommqat5533_firmwareMatch-

Node

qualcommqbt2000Match-

AND

qualcommqbt2000_firmwareMatch-

Node

qualcommqca6390Match-

AND

qualcommqca6390_firmwareMatch-

Node

qualcommqca6391Match-

AND

qualcommqca6391_firmwareMatch-

Node

qualcommqca6421Match-

AND

qualcommqca6421_firmwareMatch-

Node

qualcommqca6426Match-

AND

qualcommqca6426_firmwareMatch-

Node

qualcommqca6431Match-

AND

qualcommqca6431_firmwareMatch-

Node

qualcommqca6436Match-

AND

qualcommqca6436_firmwareMatch-

Node

qualcommqca6564au_firmwareMatch-

AND

qualcommqca6564auMatch-

Node

qualcommqca6574a_firmwareMatch-

AND

qualcommqca6574aMatch-

Node

qualcommqca6574au_firmwareMatch-

AND

qualcommqca6574auMatch-

Node

qualcommqca6584au_firmwareMatch-

AND

qualcommqca6584auMatch-

Node

qualcommqca6595au_firmwareMatch-

AND

qualcommqca6595auMatch-

Node

qualcommqca6696_firmwareMatch-

AND

qualcommqca6696Match-

Node

qualcommqca8337_firmwareMatch-

AND

qualcommqca8337Match-

Node

qualcommqdm2301_firmwareMatch-

AND

qualcommqdm2301Match-

Node

qualcommqdm2305_firmwareMatch-

AND

qualcommqdm2305Match-

Node

qualcommqdm3301_firmwareMatch-

AND

qualcommqdm3301Match-

Node

qualcommqdm5620_firmwareMatch-

AND

qualcommqdm5620Match-

Node

qualcommqdm5621_firmwareMatch-

AND

qualcommqdm5621Match-

Node

qualcommqdm5650_firmwareMatch-

AND

qualcommqdm5650Match-

Node

qualcommqdm5652_firmwareMatch-

AND

qualcommqdm5652Match-

Node

qualcommqdm5670_firmwareMatch-

AND

qualcommqdm5670Match-

Node

qualcommqdm5671_firmwareMatch-

AND

qualcommqdm5671Match-

Node

qualcommqdm5677_firmwareMatch-

AND

qualcommqdm5677Match-

Node

qualcommqdm5679_firmwareMatch-

AND

qualcommqdm5679Match-

Node

qualcommqet4101_firmwareMatch-

AND

qualcommqet4101Match-

Node

qualcommqet5100_firmwareMatch-

AND

qualcommqet5100Match-

Node

qualcommqet6110_firmwareMatch-

AND

qualcommqet6110Match-

Node

qualcommqfs2530_firmwareMatch-

AND

qualcommqfs2530Match-

Node

qualcommqfs2580_firmwareMatch-

AND

qualcommqfs2580Match-

Node

qualcommqln1021aq_firmwareMatch-

AND

qualcommqln1021aqMatch-

Node

qualcommqln1031_firmwareMatch-

AND

qualcommqln1031Match-

Node

qualcommqln1036aq_firmwareMatch-

AND

qualcommqln1036aqMatch-

Node

qualcommqln4642_firmwareMatch-

AND

qualcommqln4642Match-

Node

qualcommqln4650_firmwareMatch-

AND

qualcommqln4650Match-

Node

qualcommqln5020_firmwareMatch-

AND

qualcommqln5020Match-

Node

qualcommqln5030_firmwareMatch-

AND

qualcommqln5030Match-

Node

qualcommqln5040_firmwareMatch-

AND

qualcommqln5040Match-

Node

qualcommqpa2625_firmwareMatch-

AND

qualcommqpa2625Match-

Node

qualcommqpa5580_firmwareMatch-

AND

qualcommqpa5580Match-

Node

qualcommqpa6560_firmwareMatch-

AND

qualcommqpa6560Match-

Node

qualcommqpa8673_firmwareMatch-

AND

qualcommqpa8673Match-

Node

qualcommqpa8686_firmwareMatch-

AND

qualcommqpa8686Match-

Node

qualcommqpa8801_firmwareMatch-

AND

qualcommqpa8801Match-

Node

qualcommqpa8802_firmwareMatch-

AND

qualcommqpa8802Match-

Node

qualcommqpa8803_firmwareMatch-

AND

qualcommqpa8803Match-

Node

qualcommqpa8821_firmwareMatch-

AND

qualcommqpa8821Match-

Node

qualcommqpa8842_firmwareMatch-

AND

qualcommqpa8842Match-

Node

qualcommqpm5621_firmwareMatch-

AND

qualcommqpm5621Match-

Node

qualcommqpm5658_firmwareMatch-

AND

qualcommqpm5658Match-

Node

qualcommqpm5670_firmwareMatch-

AND

qualcommqpm5670Match-

Node

qualcommqpm5677_firmwareMatch-

AND

qualcommqpm5677Match-

Node

qualcommqpm5679_firmwareMatch-

AND

qualcommqpm5679Match-

Node

qualcommqpm6582_firmwareMatch-

AND

qualcommqpm6582Match-

Node

qualcommqpm6585_firmwareMatch-

AND

qualcommqpm6585Match-

Node

qualcommqpm8830_firmwareMatch-

AND

qualcommqpm8830Match-

Node

qualcommqpm8895_firmwareMatch-

AND

qualcommqpm8895Match-

Node

qualcommqtc800h_firmwareMatch-

AND

qualcommqtc800hMatch-

Node

qualcommqtc801s_firmwareMatch-

AND

qualcommqtc801sMatch-

Node

qualcommqtm525_firmwareMatch-

AND

qualcommqtm525Match-

Node

qualcommqtm527_firmwareMatch-

AND

qualcommqtm527Match-

Node

qualcommsa2150p_firmwareMatch-

AND

qualcommsa2150pMatch-

Node

qualcommsa415m_firmwareMatch-

AND

qualcommsa415mMatch-

Node

qualcommsa515m_firmwareMatch-

AND

qualcommsa515mMatch-

Node

qualcommsd765_firmwareMatch-

AND

qualcommsd765Match-

Node

qualcommsd765g_firmwareMatch-

AND

qualcommsd765gMatch-

Node

qualcommsd768g_firmwareMatch-

AND

qualcommsd768gMatch-

Node

qualcommsd865_5g_firmwareMatch-

AND

qualcommsd865_5gMatch-

Node

qualcommsd870_firmwareMatch-

AND

qualcommsd870Match-

Node

qualcommsdr8150_firmwareMatch-

AND

qualcommsdr8150Match-

Node

qualcommsdr8250_firmwareMatch-

AND

qualcommsdr8250Match-

Node

qualcommsdr865_firmwareMatch-

AND

qualcommsdr865Match-

Node

qualcommsdx55_firmwareMatch-

AND

qualcommsdx55Match-

Node

qualcommsdx55m_firmwareMatch-

AND

qualcommsdx55mMatch-

Node

qualcommsdxr2_5g_firmwareMatch-

AND

qualcommsdxr2_5gMatch-

Node

qualcommsm7250p_firmwareMatch-

AND

qualcommsm7250pMatch-

Node

qualcommsmb1355_firmwareMatch-

AND

qualcommsmb1355Match-

Node

qualcommsmb1381_firmwareMatch-

AND

qualcommsmb1381Match-

Node

qualcommsmb1390_firmwareMatch-

AND

qualcommsmb1390Match-

Node

qualcommsmr525_firmwareMatch-

AND

qualcommsmr525Match-

Node

qualcommsmr526_firmwareMatch-

AND

qualcommsmr526Match-

Node

qualcommwcd9341_firmwareMatch-

AND

qualcommwcd9341Match-

Node

qualcommwcd9360_firmwareMatch-

AND

qualcommwcd9360Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcd9385_firmwareMatch-

AND

qualcommwcd9385Match-

Node

qualcommwcn3991_firmwareMatch-

AND

qualcommwcn3991Match-

Node

qualcommwcn3998_firmwareMatch-

AND

qualcommwcn3998Match-

Node

qualcommwsa8810_firmwareMatch-

AND

qualcommwsa8810Match-

Node

qualcommwsa8815_firmwareMatch-

AND

qualcommwsa8815Match-

VendorProductVersionCPE
qualcommcsrb31024_firmware-cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:*
qualcommcsrb31024-cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:*
qualcommpm3003a_firmware-cpe:2.3:o:qualcomm:pm3003a_firmware:-:*:*:*:*:*:*:*
qualcommpm3003a-cpe:2.3:h:qualcomm:pm3003a:-:*:*:*:*:*:*:*
qualcommpm7150a_firmware-cpe:2.3:o:qualcomm:pm7150a_firmware:-:*:*:*:*:*:*:*
qualcommpm7150a-cpe:2.3:h:qualcomm:pm7150a:-:*:*:*:*:*:*:*
qualcommpm7150l_firmware-cpe:2.3:o:qualcomm:pm7150l_firmware:-:*:*:*:*:*:*:*
qualcommpm7150l-cpe:2.3:h:qualcomm:pm7150l:-:*:*:*:*:*:*:*
qualcommpm7250_firmware-cpe:2.3:o:qualcomm:pm7250_firmware:-:*:*:*:*:*:*:*
qualcommpm7250-cpe:2.3:h:qualcomm:pm7250:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	csrb31024_firmware	-	cpe:2.3:o:qualcomm:csrb31024_firmware:-:::::::*
qualcomm	csrb31024	-	cpe:2.3:h:qualcomm:csrb31024:-:::::::*
qualcomm	pm3003a_firmware	-	cpe:2.3:o:qualcomm:pm3003a_firmware:-:::::::*
qualcomm	pm3003a	-	cpe:2.3:h:qualcomm:pm3003a:-:::::::*
qualcomm	pm7150a_firmware	-	cpe:2.3:o:qualcomm:pm7150a_firmware:-:::::::*
qualcomm	pm7150a	-	cpe:2.3:h:qualcomm:pm7150a:-:::::::*
qualcomm	pm7150l_firmware	-	cpe:2.3:o:qualcomm:pm7150l_firmware:-:::::::*
qualcomm	pm7150l	-	cpe:2.3:h:qualcomm:pm7150l:-:::::::*
qualcomm	pm7250_firmware	-	cpe:2.3:o:qualcomm:pm7250_firmware:-:::::::*
qualcomm	pm7250	-	cpe:2.3:h:qualcomm:pm7250:-:::::::*

Rows per page:

1-10 of 2261

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "CSRB31024, PM3003A, PM7150A, PM7150L, PM7250, PM7250B, PM8008, PM8009, PM8150A, PM8150B, PM8150C, PM8150L, PM8250, PMK8002, PMR525, PMX24, PMX55, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5522, QAT5533, QBT2000, QCA6390, QCA6391, QCA6421, QCA6426, QCA6431, QCA6436, QCA6564AU, QCA6574A, QCA6574AU, QCA6584AU, QCA6595AU, QCA6696, QCA8337, QDM2301, QDM2305, QDM3301, QDM5620, QDM5621, QDM5650, QDM5652, QDM5670, QDM5671, QDM5677, QDM5679, QET4101, QET5100, QET6110, QFS2530, QFS2580, QLN1021AQ, QLN1031, QLN1036AQ, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5580, QPA6560, QPA8673, QPA8686, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM5621, QPM5658, QPM5670, QPM5677, QPM5679, QPM6582, QPM6585, QPM8830, QPM8895, QTC800H, QTC801S, QTM525, QTM527, SA2150P, SA415M, SA515M, SD765, SD765G, SD768G, SD865 5G, SD870, SDR8150, SDR8250, SDR865, SDX55, SDX55M, SDXR2 5G, SM7250P, SMB1355, SMB1381, SMB1390, SMR525, SMR526, WCD9341, WCD9360, WCD9380, WCD9385, WCN3991, WCN3998, WSA8810, WSA8815"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin

Social References

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

17.2%

JSON

Related for CVE-2020-11186